theY4Kman / parsuricata

Related projects ⓘ

Alternatives and complementary repositories for parsuricata

• m-chrome / py-suricataparser
  Pure python parser for Snort/Suricata rules.
  ☆27Updated 8 months ago
• klingerko / nids-rule-library
  Collection of various open-source an commercial rulesets for NIDS (especially for Suricata and Snort)
  ☆20Updated last year
• arvindpj007 / Suricata-Detect-DoS-Attack
  Configuring the Suricata IDS to detect DoS attacks by adding custom rule file.
  ☆39Updated 4 years ago
• DCSO / slinkwatch
  automatic enumeration and maintenance of Suricata monitoring interfaces
  ☆11Updated 4 years ago
• theY4Kman / suricata-prettifier
  Command-line tool to format and syntax highlight Suricata rules
  ☆13Updated 4 years ago
• mole-ids / mole
  Yara powered NIDS with high speed packet capture powered by PF_RING
  ☆66Updated 6 months ago
• AlkenePan / awesome-bro
  Useful resources for Zeek(https://zeek.org/) (Bro(http://bro.org/))
  ☆31Updated 4 years ago
• bez0r / BeaconBits
  Network timing evaluation used to detect beacons, works with argus flow as the source
  ☆19Updated 8 years ago
• PaloAltoNetworks / pyjarm
  pyJARM is a library for doing JARM fingerprinting using python
  ☆50Updated 3 years ago
• jasonish / suricata-trafficid.ARCHIVED
  Application and service identification rules for Suricata
  ☆29Updated 2 years ago
• quadrantsec / meer
  Meer is a "spooler" for Suricata / Sagan.
  ☆28Updated last year
• OISF / suricata-intel-index
  Suricata rule and intel index
  ☆29Updated last month
• sysflow-telemetry / sysflow
  SysFlow documentation and issues tracker
  ☆45Updated last month
• satta / gommunityid
  Go implementation of the Community ID flow hashing standard
  ☆19Updated 2 months ago
• Cluster25 / detection
  Threat Detection Rules (Snort/Sigma/Yara)
  ☆13Updated 9 months ago
• DCSO / fever
  fast, extensible, versatile event router for Suricata's EVE-JSON format
  ☆50Updated 4 months ago
• ShanghaiWuDun / rust-nasl
  ☆10Updated 5 years ago
• zom3y3 / ssdc
  ssdeep cluster analysis for malware files
  ☆29Updated 4 years ago
• zeek / spicy-analyzers
  Growing collection of Spicy-based protocol and file analyzers for Zeek
  ☆31Updated 2 months ago
• redBorder / daq
  Snort/Suricata DAQ module with DPDK patch
  ☆11Updated 7 months ago
• elastic / siglearn
  Code for BH21 talk: "Generating YARA Rules by Classifying Malicious Byte Sequences"
  ☆16Updated 3 years ago
• jheise / yarascanner
  Golang based web service to scan files with yara rules
  ☆27Updated 7 years ago
• seccome / decept-agent-linux
  欺骗防御Linux版本Agent
  ☆13Updated 3 years ago
• irtimmer / bro-xdp_packet-plugin
  Plugin providing AF_XDP support for Bro.
  ☆14Updated 3 years ago
• onsoim / suricata2pcap
  suricata rules to pcap
  ☆9Updated 3 years ago
• hardenedlinux / hardenedlinux-zeek-scripts
  ☆38Updated 11 months ago
• zeek / zeek-af_packet-plugin
  Plugin providing native AF_Packet support for Zeek.
  ☆33Updated 7 months ago
• corelight / CVE-2021-31166
  HTTP Protocol Stack CVE-2021-31166
  ☆13Updated last month
• rsabir / bro-dsniff
  A dsniff project using bro
  ☆10Updated 8 years ago
• activeshadow / go-atomicredteam
  go-atomicredteam is a Golang application to execute tests as defined in the atomics folder of Red Canary's Atomic Red Team project (https…
  ☆46Updated last year